We found a vulnerability (CVE-2020-1967) of openssl as the following picture shown:
This issue will be fixed in version 1.1.1g of openssl while currently we use version 1.1.1d, which comes from golang:1.14.0.
The fix could either be adding an openssl upgrade command in kube2iam Dockerfile like the following, or waiting for the Golang image to upgrade the openssl version.
Upgrading in kube2iam Dockerfile will be a more efficient way to solve this issue since Golang did not upgrade version of openssl even for their latest version.
We found a vulnerability (CVE-2020-1967) of openssl as the following picture shown:![Screen Shot 2020-11-04 at 12 07 32 PM](https://user-images.githubusercontent.com/27592014/98162649-85951600-1e96-11eb-82d4-720bd97f6cfe.png)
This issue will be fixed in version 1.1.1g of openssl while currently we use version 1.1.1d, which comes from
golang:1.14.0
.The fix could either be adding an openssl upgrade command in kube2iam Dockerfile like the following, or waiting for the Golang image to upgrade the openssl version.
Upgrading in kube2iam Dockerfile will be a more efficient way to solve this issue since Golang did not upgrade version of openssl even for their latest version.